Path: utzoo!utgpu!news-server.csri.toronto.edu!rpi!zaphod.mps.ohio-state.edu!usc!apple!agate!darkstar!felix!haynes
From: haynes@felix.ucsc.edu (99700000)
Newsgroups: comp.unix.questions
Subject: Re: How to catch a snoopy sysadmin?
Message-ID: <13971@darkstar.ucsc.edu>
Date: 1 Apr 91 00:44:08 GMT
References: <1991Mar31.011850.432@crowfix.uucp>
Sender: usenet@darkstar.ucsc.edu
Distribution: na
Organization: University of California, Santa Cruz Open Access Computing
Lines: 10


In article <1991Mar31.011850.432@crowfix.uucp> ian@crowfix.uucp (Ian Smith) writes:
>I am posting this for a friend.  His sysadmin is a bit of a snoop,
>and may be reading everyone's email.  Does anyone have advice on
>how to catch him?  We were thinking of snooping ourselves (all
>users know the root password).  Is there, perhaps, some way to keep
>track of all root commands, or to track root terminal i/o?

Everybody knows the root password and you're worried about one snoopy
administrator?!?!